MITM attack is only possible in the schemes without an initial secure
channel (or previously agreed keys). Or better said, it's always
possible in schemes without an initial secure channel.
> -----Original Message-----
> From: funsec-bounces at linuxbox.org [mailto:funsec-bounces at linuxbox.org]
On
> Behalf Of Pierre Vandevenne
> Sent: Monday, October 17, 2005 4:04 PM
> To: Douglas F. Calvert
> Cc: funsec at linuxbox.org> Subject: Re[4]: [funsec] The end of Phishing in sight?
>> Good Day,
>> DFC> keychain. MitM is not a "magic bullet" it is the obvious attack
based
>> MITM is a magic bullet in the sense that it can be invoked at will as
> an attack against virtually everything, even when it is not practical.
> Demonstrating, in a formal way, that a MITM attack is not possible in
> a given setting is hard.
>> --
> Best regards,
> Pierre mailto:pierre at datarescue.com>> _______________________________________________
> Fun and Misc security discussion for OT posts.
>https://linuxbox.org/cgi-bin/mailman/listinfo/funsec> Note: funsec is a public and open mailing list.